archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/ds/security/services/ca/include/csprop.h

700 lines
26 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. //+--------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. // Copyright (C) Microsoft Corporation, 1996 - 1999
  5. //
  6. // File: csprop.h
  7. //
  8. // Contents: Cert Server Property interfaces
  9. //
  10. // History: 31-Jul-96 vich created
  11. //
  12. //---------------------------------------------------------------------------
  14. #ifndef __CSPROP_H__
  15. #define __CSPROP_H__
  17. #include "certdb.h"
  19. // begin_certsrv
  21. //+--------------------------------------------------------------------------
  22. // Name properties:
  24. #define wszPROPDISTINGUISHEDNAME TEXT("DistinguishedName")
  25. #define wszPROPRAWNAME TEXT("RawName")
  27. #define wszPROPCOUNTRY TEXT("Country")
  28. #define wszPROPORGANIZATION TEXT("Organization")
  29. #define wszPROPORGUNIT TEXT("OrgUnit")
  30. #define wszPROPCOMMONNAME TEXT("CommonName")
  31. #define wszPROPLOCALITY TEXT("Locality")
  32. #define wszPROPSTATE TEXT("State")
  33. #define wszPROPTITLE TEXT("Title")
  34. #define wszPROPGIVENNAME TEXT("GivenName")
  35. #define wszPROPINITIALS TEXT("Initials")
  36. #define wszPROPSURNAME TEXT("SurName")
  37. #define wszPROPDOMAINCOMPONENT TEXT("DomainComponent")
  38. #define wszPROPEMAIL TEXT("EMail")
  39. #define wszPROPSTREETADDRESS TEXT("StreetAddress")
  40. #define wszPROPUNSTRUCTUREDNAME TEXT("UnstructuredName")
  41. #define wszPROPUNSTRUCTUREDADDRESS TEXT("UnstructuredAddress")
  42. #define wszPROPDEVICESERIALNUMBER TEXT("DeviceSerialNumber")
  44. //+--------------------------------------------------------------------------
  45. // Subject Name properties:
  47. #define wszPROPSUBJECTDOT TEXT("Subject.")
  48. #define wszPROPSUBJECTDISTINGUISHEDNAME \
  49. wszPROPSUBJECTDOT wszPROPDISTINGUISHEDNAME
  50. #define wszPROPSUBJECTRAWNAME wszPROPSUBJECTDOT wszPROPRAWNAME
  52. #define wszPROPSUBJECTCOUNTRY wszPROPSUBJECTDOT wszPROPCOUNTRY
  53. #define wszPROPSUBJECTORGANIZATION wszPROPSUBJECTDOT wszPROPORGANIZATION
  54. #define wszPROPSUBJECTORGUNIT wszPROPSUBJECTDOT wszPROPORGUNIT
  55. #define wszPROPSUBJECTCOMMONNAME wszPROPSUBJECTDOT wszPROPCOMMONNAME
  56. #define wszPROPSUBJECTLOCALITY wszPROPSUBJECTDOT wszPROPLOCALITY
  57. #define wszPROPSUBJECTSTATE wszPROPSUBJECTDOT wszPROPSTATE
  58. #define wszPROPSUBJECTTITLE wszPROPSUBJECTDOT wszPROPTITLE
  59. #define wszPROPSUBJECTGIVENNAME wszPROPSUBJECTDOT wszPROPGIVENNAME
  60. #define wszPROPSUBJECTINITIALS wszPROPSUBJECTDOT wszPROPINITIALS
  61. #define wszPROPSUBJECTSURNAME wszPROPSUBJECTDOT wszPROPSURNAME
  62. #define wszPROPSUBJECTDOMAINCOMPONENT wszPROPSUBJECTDOT wszPROPDOMAINCOMPONENT
  63. #define wszPROPSUBJECTEMAIL wszPROPSUBJECTDOT wszPROPEMAIL
  64. #define wszPROPSUBJECTSTREETADDRESS wszPROPSUBJECTDOT wszPROPSTREETADDRESS
  65. #define wszPROPSUBJECTUNSTRUCTUREDNAME wszPROPSUBJECTDOT wszPROPUNSTRUCTUREDNAME
  66. #define wszPROPSUBJECTUNSTRUCTUREDADDRESS wszPROPSUBJECTDOT wszPROPUNSTRUCTUREDADDRESS
  67. #define wszPROPSUBJECTDEVICESERIALNUMBER wszPROPSUBJECTDOT wszPROPDEVICESERIALNUMBER
  69. // end_certsrv
  71. //+--------------------------------------------------------------------------
  72. // Issuer Name properties:
  74. #define wszPROPISSUERDOT TEXT("Issuer.")
  75. #define wszPROPISSUERDISTINGUISHEDNAME \
  76. wszPROPISSUERDOT wszPROPDISTINGUISHEDNAME
  77. #define wszPROPISSUERRAWNAME wszPROPISSUERDOT wszPROPRAWNAME
  79. #define wszPROPISSUERCOUNTRY wszPROPISSUERDOT wszPROPCOUNTRY
  80. #define wszPROPISSUERORGANIZATION wszPROPISSUERDOT wszPROPORGANIZATION
  81. #define wszPROPISSUERORGUNIT wszPROPISSUERDOT wszPROPORGUNIT
  82. #define wszPROPISSUERCOMMONNAME wszPROPISSUERDOT wszPROPCOMMONNAME
  83. #define wszPROPISSUERLOCALITY wszPROPISSUERDOT wszPROPLOCALITY
  84. #define wszPROPISSUERSTATE wszPROPISSUERDOT wszPROPSTATE
  85. #define wszPROPISSUERTITLE wszPROPISSUERDOT wszPROPTITLE
  86. #define wszPROPISSUERGIVENNAME wszPROPISSUERDOT wszPROPGIVENNAME
  87. #define wszPROPISSUERINITIALS wszPROPISSUERDOT wszPROPINITIALS
  88. #define wszPROPISSUERSURNAME wszPROPISSUERDOT wszPROPSURNAME
  89. #define wszPROPISSUERDOMAINCOMPONENT wszPROPISSUERDOT wszPROPDOMAINCOMPONENT
  90. #define wszPROPISSUEREMAIL wszPROPISSUERDOT wszPROPEMAIL
  91. #define wszPROPISSUERSTREETADDRESS wszPROPISSUERDOT wszPROPSTREETADDRESS
  92. #define wszPROPISSUERUNSTRUCTUREDNAME wszPROPISSUERDOT wszPROPUNSTRUCTUREDNAME
  93. #define wszPROPISSUERUNSTRUCTUREDADDRESS wszPROPISSUERDOT wszPROPUNSTRUCTUREDADDRESS
  94. #define wszPROPISSUERDEVICESERIALNUMBER wszPROPISSUERDOT wszPROPDEVICESERIALNUMBER
  96. #define wszPROPISSUERCOUNTRYOBJID \
  97. wszPROPISSUERDOT TEXT(szOID_COUNTRY_NAME)
  99. #define wszPROPISSUERORGANIZATIONOBJID \
  100. wszPROPISSUERDOT TEXT(szOID_ORGANIZATION_NAME)
  102. #define wszPROPISSUERORGUNITOBJID \
  103. wszPROPISSUERDOT TEXT(szOID_ORGANIZATIONAL_UNIT_NAME)
  105. #define wszPROPISSUERCOMMONNAMEOBJID \
  106. wszPROPISSUERDOT TEXT(szOID_COMMON_NAME)
  108. #define wszPROPISSUERLOCALITYOBJID \
  109. wszPROPISSUERDOT TEXT(szOID_LOCALITY_NAME)
  111. #define wszPROPISSUERSTATEOBJID \
  112. wszPROPISSUERDOT TEXT(szOID_STATE_OR_PROVINCE_NAME)
  114. #define wszPROPISSUERTITLEOBJID \
  115. wszPROPISSUERDOT TEXT(szOID_TITLE)
  117. #define wszPROPISSUERGIVENNAMEOBJID \
  118. wszPROPISSUERDOT TEXT(szOID_GIVEN_NAME)
  120. #define wszPROPISSUERINITIALSOBJID \
  121. wszPROPISSUERDOT TEXT(szOID_INITIALS)
  123. #define wszPROPISSUERSURNAMEOBJID \
  124. wszPROPISSUERDOT TEXT(szOID_SUR_NAME)
  126. #define wszPROPISSUERDOMAINCOMPONENTOBJID \
  127. wszPROPISSUERDOT TEXT(szOID_DOMAIN_COMPONENT)
  129. #define wszPROPISSUEREMAILOBJID \
  130. wszPROPISSUERDOT TEXT(szOID_RSA_emailAddr)
  132. #define wszPROPISSUERSTREETADDRESSOBJID \
  133. wszPROPISSUERDOT TEXT(szOID_STREET_ADDRESS)
  135. #define wszPROPISSUERUNSTRUCTUREDNAMEOBJID \
  136. wszPROPISSUERDOT TEXT(szOID_RSA_unstructName)
  138. #define wszPROPISSUERUNSTRUCTUREDADDRESSOBJID \
  139. wszPROPISSUERDOT TEXT(szOID_RSA_unstructAddr)
  141. #define wszPROPISSUERDEVICESERIALNUMBEROBJID \
  142. wszPROPISSUERDOT TEXT(szOID_DEVICE_SERIAL_NUMBER)
  145. //+--------------------------------------------------------------------------
  146. // For mapping request attribute names to internal property names:
  148. // Map to wszPROPSUBJECTCOUNTRY:
  149. #define wszATTRCOUNTRY1 TEXT("C")
  150. #define wszATTRCOUNTRY2 TEXT("Country")
  152. // Map to wszPROPSUBJECTORGANIZATION:
  153. #define wszATTRORG1 TEXT("O")
  154. #define wszATTRORG2 TEXT("Org")
  155. #define wszATTRORG3 TEXT("Organization")
  157. // Map to wszPROPSUBJECTORGUNIT:
  158. #define wszATTRORGUNIT1 TEXT("OU")
  159. #define wszATTRORGUNIT2 TEXT("OrgUnit")
  160. #define wszATTRORGUNIT3 TEXT("OrganizationUnit")
  161. #define wszATTRORGUNIT4 TEXT("OrganizationalUnit")
  163. // Map to wszPROPSUBJECTCOMMONNAME:
  164. #define wszATTRCOMMONNAME1 TEXT("CN")
  165. #define wszATTRCOMMONNAME2 TEXT("CommonName")
  167. // Map to wszPROPSUBJECTLOCALITY:
  168. #define wszATTRLOCALITY1 TEXT("L")
  169. #define wszATTRLOCALITY2 TEXT("Locality")
  171. // Map to wszPROPSUBJECTSTATE:
  172. #define wszATTRSTATE1 TEXT("S")
  173. #define wszATTRSTATE2 TEXT("ST")
  174. #define wszATTRSTATE3 TEXT("State")
  176. // Map to wszPROPSUBJECTTITLE:
  177. #define wszATTRTITLE1 TEXT("T")
  178. #define wszATTRTITLE2 TEXT("Title")
  180. // Map to wszPROPSUBJECTGIVENNAME:
  181. #define wszATTRGIVENNAME1 TEXT("G")
  182. #define wszATTRGIVENNAME2 TEXT("GivenName")
  184. // Map to wszPROPSUBJECTINITIALS:
  185. #define wszATTRINITIALS1 TEXT("I")
  186. #define wszATTRINITIALS2 TEXT("Initials")
  188. // Map to wszPROPSUBJECTSURNAME:
  189. #define wszATTRSURNAME1 TEXT("SN")
  190. #define wszATTRSURNAME2 TEXT("SurName")
  192. // Map to wszPROPSUBJECTDOMAINCOMPONENT:
  193. #define wszATTRDOMAINCOMPONENT1 TEXT("DC")
  194. #define wszATTRDOMAINCOMPONENT2 TEXT("DomainComponent")
  196. // Map to wszPROPSUBJECTEMAIL:
  197. #define wszATTREMAIL1 TEXT("E")
  198. #define wszATTREMAIL2 TEXT("EMail")
  200. // Map to wszPROPSUBJECTSTREETADDRESS:
  201. #define wszATTRSTREETADDRESS1 TEXT("Street")
  202. #define wszATTRSTREETADDRESS2 TEXT("StreetAddress")
  204. // Map to wszPROPSUBJECTUNSTRUCTUREDNAME:
  205. #define wszATTRUNSTRUCTUREDNAME1 TEXT("UnstructuredName")
  207. // Map to wszPROPSUBJECTUNSTRUCTUREDADDRESS:
  208. #define wszATTRUNSTRUCTUREDADDRESS1 TEXT("UnstructuredAddress")
  210. // Map to wszPROPSUBJECTDEVICESERIALNUMBER:
  211. #define wszATTRDEVICESERIALNUMBER1 TEXT("DeviceSerialNumber")
  213. #define wszPROPCERTCLIDLL_VERSION TEXT("..CertCli Version")
  215. // begin_certsrv
  217. //+--------------------------------------------------------------------------
  218. // Request properties:
  219. #define wszPROPREQUESTDOT TEXT("Request.")
  221. #define wszPROPREQUESTREQUESTID TEXT("RequestID")
  222. #define wszPROPREQUESTRAWREQUEST TEXT("RawRequest")
  223. #define wszPROPREQUESTRAWARCHIVEDKEY TEXT("RawArchivedKey")
  224. #define wszPROPREQUESTKEYRECOVERYHASHES TEXT("KeyRecoveryHashes")
  225. #define wszPROPREQUESTRAWOLDCERTIFICATE TEXT("RawOldCertificate")
  226. #define wszPROPREQUESTATTRIBUTES TEXT("RequestAttributes")
  227. #define wszPROPREQUESTTYPE TEXT("RequestType")
  228. #define wszPROPREQUESTFLAGS TEXT("RequestFlags")
  229. #define wszPROPREQUESTSTATUSCODE TEXT("StatusCode")
  230. #define wszPROPREQUESTDISPOSITION TEXT("Disposition")
  231. #define wszPROPREQUESTDISPOSITIONMESSAGE TEXT("DispositionMessage")
  232. #define wszPROPREQUESTSUBMITTEDWHEN TEXT("SubmittedWhen")
  233. #define wszPROPREQUESTRESOLVEDWHEN TEXT("ResolvedWhen")
  234. #define wszPROPREQUESTREVOKEDWHEN TEXT("RevokedWhen")
  235. #define wszPROPREQUESTREVOKEDEFFECTIVEWHEN TEXT("RevokedEffectiveWhen")
  236. #define wszPROPREQUESTREVOKEDREASON TEXT("RevokedReason")
  237. #define wszPROPREQUESTERNAME TEXT("RequesterName")
  238. #define wszPROPCALLERNAME TEXT("CallerName")
  239. #define wszPROPREQUESTERADDRESS TEXT("RequesterAddress") // no_certsrv
  240. #define wszPROPSIGNERPOLICIES TEXT("SignerPolicies")
  241. #define wszPROPSIGNERAPPLICATIONPOLICIES TEXT("SignerApplicationPolicies")
  242. #define wszPROPOFFICER TEXT("Officer")
  244. //+--------------------------------------------------------------------------
  245. // Request attribute properties:
  247. #define wszPROPCHALLENGE TEXT("Challenge")
  248. #define wszPROPEXPECTEDCHALLENGE TEXT("ExpectedChallenge")
  250. #define wszPROPDISPOSITION TEXT("Disposition")
  251. #define wszPROPDISPOSITIONDENY TEXT("Deny")
  252. #define wszPROPDISPOSITIONPENDING TEXT("Pending")
  254. #define wszPROPVALIDITYPERIODSTRING TEXT("ValidityPeriod")
  255. #define wszPROPVALIDITYPERIODCOUNT TEXT("ValidityPeriodUnits")
  257. #define wszPROPCERTTYPE TEXT("CertType")
  258. #define wszPROPCERTTEMPLATE TEXT("CertificateTemplate")
  259. #define wszPROPCERTUSAGE TEXT("CertificateUsage")
  261. #define wszPROPREQUESTOSVERSION TEXT("RequestOSVersion")
  262. #define wszPROPREQUESTCSPPROVIDER TEXT("RequestCSPProvider")
  264. #define wszPROPEXITCERTFILE TEXT("CertFile")
  265. #define wszPROPCLIENTBROWSERMACHINE TEXT("cbm")
  266. #define wszPROPCERTCLIENTMACHINE TEXT("ccm")
  267. #define wszPROPCLIENTDCDNS L"cdc"
  268. #define wszPROPREQUESTMACHINEDNS L"rmd"
  269. #define wszPROPSUBJECTALTNAME2 TEXT("san")
  270. #define wszPROPDNS TEXT("dns")
  271. #define wszPROPDN TEXT("dn")
  272. #define wszPROPURL TEXT("url")
  273. #define wszPROPIPADDRESS TEXT("ipaddress")
  274. #define wszPROPGUID TEXT("guid")
  275. #define wszPROPOID TEXT("oid")
  276. #define wszPROPUPN TEXT("upn")
  277. #define wszPROPUPN TEXT("upn")
  279. #define szPROPASNTAG "{asn}"
  281. #define wszPROPUTF8TAG TEXT("{utf8}")
  282. #define wszPROPOCTETTAG TEXT("{octet}")
  283. #define wszPROPASNTAG TEXT(szPROPASNTAG)
  286. //+--------------------------------------------------------------------------
  287. // "System" properties
  288. // ".#" means ".0", ".1", ".2" ... may be appended to the property name to
  289. // collect context specific values. For some properties, the suffix selects
  290. // the CA certificate context. For others, it selects the the CA CRL context.
  292. #define wszPROPCATYPE TEXT("CAType")
  293. #define wszPROPSANITIZEDCANAME TEXT("SanitizedCAName")
  294. #define wszPROPSANITIZEDSHORTNAME TEXT("SanitizedShortName")
  295. #define wszPROPMACHINEDNSNAME TEXT("MachineDNSName")
  296. #define wszPROPMODULEREGLOC TEXT("ModuleRegistryLocation")
  297. #define wszPROPUSEDS TEXT("fUseDS")
  298. #define wszPROPDELTACRLSDISABLED TEXT("fDeltaCRLsDisabled")
  299. #define wszPROPSERVERUPGRADED TEXT("fServerUpgraded")
  300. #define wszPROPCONFIGDN TEXT("ConfigDN")
  301. #define wszPROPDOMAINDN TEXT("DomainDN")
  302. #define wszPROPLOGLEVEL TEXT("LogLevel")
  303. #define wszPROPSESSIONCOUNT TEXT("SessionCount")
  304. #define wszPROPTEMPLATECHANGESEQUENCENUMBER TEXT("TemplateChangeSequenceNumber")
  306. // Request Context properties:
  308. #define wszPROPREQUESTERTOKEN TEXT("RequesterToken") // no_certsrv
  309. #define wszPROPREQUESTERCAACCESS TEXT("RequesterCAAccess")
  310. #define wszPROPUSERDN TEXT("UserDN")
  311. #define wszPROPKEYARCHIVED TEXT("KeyArchived")
  314. // CA Certificate properties: (all ".#" extensible except wszPROPCERTCOUNT)
  316. #define wszPROPCERTCOUNT TEXT("CertCount")
  317. #define wszPROPRAWCACERTIFICATE TEXT("RawCACertificate")
  318. #define wszPROPCERTSTATE TEXT("CertState")
  319. #define wszPROPCERTSUFFIX TEXT("CertSuffix")
  321. // CA CRL properties: (all ".#" extensible)
  323. #define wszPROPRAWCRL TEXT("RawCRL")
  324. #define wszPROPRAWDELTACRL TEXT("RawDeltaCRL")
  325. #define wszPROPCRLINDEX TEXT("CRLIndex")
  326. #define wszPROPCRLSTATE TEXT("CRLState")
  327. #define wszPROPCRLSUFFIX TEXT("CRLSuffix")
  329. // Values for wszPROPCERTSTATE (see certadm.h):
  330. // CA_DISP_REVOKED // This Cert has been revoked.
  331. // CA_DISP_VALID // This Cert is still valid
  332. // CA_DISP_INVALID // This Cert has expired.
  333. // CA_DISP_ERROR // Cert unavailable (placehholder in registry?)
  335. // Values for wszPROPCRLSTATE (see certadm.h):
  336. // CA_DISP_REVOKED // All unexpired certs using this Cert's CRL have been
  337. // // revoked.
  338. // CA_DISP_VALID // This Cert is still publishing CRLs as needed.
  339. // CA_DISP_INVALID // All certs using this Cert's CRL are expired.
  340. // CA_DISP_ERROR // This Cert's CRL is managed by another Cert.
  342. // "Settable" system properties:
  343. #define wszPROPEVENTLOGTERSE TEXT("EventLogTerse")
  344. #define wszPROPEVENTLOGERROR TEXT("EventLogError")
  345. #define wszPROPEVENTLOGWARNING TEXT("EventLogWarning")
  346. #define wszPROPEVENTLOGVERBOSE TEXT("EventLogVerbose")
  347. #define wszPROPEVENTLOGEXHAUSTIVE TEXT("EventLogExhaustive")
  348. #define wszPROPDCNAME TEXT("DCName")
  350. //+--------------------------------------------------------------------------
  351. // Certificate properties:
  353. #define wszPROPCERTIFICATEREQUESTID TEXT("RequestID")
  354. #define wszPROPRAWCERTIFICATE TEXT("RawCertificate")
  355. #define wszPROPCERTIFICATEHASH TEXT("CertificateHash")
  356. #define wszPROPCERTIFICATETEMPLATE TEXT("CertificateTemplate")
  357. #define wszPROPCERTIFICATEENROLLMENTFLAGS TEXT("EnrollmentFlags")
  358. #define wszPROPCERTIFICATEGENERALFLAGS TEXT("GeneralFlags")
  359. #define wszPROPCERTIFICATESERIALNUMBER TEXT("SerialNumber")
  360. #define wszPROPCERTIFICATEISSUERNAMEID TEXT("IssuerNameID")//no_certsrv
  361. #define wszPROPCERTIFICATENOTBEFOREDATE TEXT("NotBefore")
  362. #define wszPROPCERTIFICATENOTAFTERDATE TEXT("NotAfter")
  363. #define wszPROPCERTIFICATESUBJECTKEYIDENTIFIER TEXT("SubjectKeyIdentifier")
  364. #define wszPROPCERTIFICATERAWPUBLICKEY TEXT("RawPublicKey")
  365. #define wszPROPCERTIFICATEPUBLICKEYLENGTH TEXT("PublicKeyLength")
  366. #define wszPROPCERTIFICATEPUBLICKEYALGORITHM TEXT("PublicKeyAlgorithm")
  367. #define wszPROPCERTIFICATERAWPUBLICKEYALGORITHMPARAMETERS \
  368. TEXT("RawPublicKeyAlgorithmParameters")
  369. #define wszPROPCERTIFICATEUPN TEXT("UPN")
  371. // Obsolete:
  372. #define wszPROPCERTIFICATETYPE TEXT("CertificateType")
  373. #define wszPROPCERTIFICATERAWSMIMECAPABILITIES TEXT("RawSMIMECapabilities")
  374. #define wszPROPNAMETYPE TEXT("NameType")
  376. //+--------------------------------------------------------------------------
  377. // Certificate extension properties:
  379. #define EXTENSION_CRITICAL_FLAG 0x00000001
  380. #define EXTENSION_DISABLE_FLAG 0x00000002
  381. #define EXTENSION_POLICY_MASK 0x0000ffff // Settable by admin+policy
  383. #define EXTENSION_ORIGIN_REQUEST 0x00010000
  384. #define EXTENSION_ORIGIN_POLICY 0x00020000
  385. #define EXTENSION_ORIGIN_ADMIN 0x00030000
  386. #define EXTENSION_ORIGIN_SERVER 0x00040000
  387. #define EXTENSION_ORIGIN_RENEWALCERT 0x00050000
  388. #define EXTENSION_ORIGIN_IMPORTEDCERT 0x00060000
  389. #define EXTENSION_ORIGIN_PKCS7 0x00070000
  390. #define EXTENSION_ORIGIN_CMC 0x00080000
  391. #define EXTENSION_ORIGIN_CACERT 0x00090000
  392. #define EXTENSION_ORIGIN_MASK 0x000f0000
  394. //+--------------------------------------------------------------------------
  395. // Extension properties:
  397. #define wszPROPEXTREQUESTID TEXT("ExtensionRequestId")
  398. #define wszPROPEXTNAME TEXT("ExtensionName")
  399. #define wszPROPEXTFLAGS TEXT("ExtensionFlags")
  400. #define wszPROPEXTRAWVALUE TEXT("ExtensionRawValue")
  402. //+--------------------------------------------------------------------------
  403. // Attribute properties:
  405. #define wszPROPATTRIBREQUESTID TEXT("AttributeRequestId")
  406. #define wszPROPATTRIBNAME TEXT("AttributeName")
  407. #define wszPROPATTRIBVALUE TEXT("AttributeValue")
  409. //+--------------------------------------------------------------------------
  410. // CRL properties:
  412. #define wszPROPCRLROWID TEXT("CRLRowId")
  413. #define wszPROPCRLNUMBER TEXT("CRLNumber")
  414. #define wszPROPCRLMINBASE TEXT("CRLMinBase") // Delta CRLs only
  415. #define wszPROPCRLNAMEID TEXT("CRLNameId")
  416. #define wszPROPCRLCOUNT TEXT("CRLCount")
  417. #define wszPROPCRLTHISUPDATE TEXT("CRLThisUpdate")
  418. #define wszPROPCRLNEXTUPDATE TEXT("CRLNextUpdate")
  419. #define wszPROPCRLTHISPUBLISH TEXT("CRLThisPublish")
  420. #define wszPROPCRLNEXTPUBLISH TEXT("CRLNextPublish")
  421. #define wszPROPCRLEFFECTIVE TEXT("CRLEffective")
  422. #define wszPROPCRLPROPAGATIONCOMPLETE TEXT("CRLPropagationComplete")
  423. #define wszPROPCRLLASTPUBLISHED TEXT("CRLLastPublished")
  424. #define wszPROPCRLPUBLISHATTEMPTS TEXT("CRLPublishAttempts")
  425. #define wszPROPCRLPUBLISHFLAGS TEXT("CRLPublishFlags")
  426. #define wszPROPCRLPUBLISHSTATUSCODE TEXT("CRLPublishStatusCode")
  427. #define wszPROPCRLPUBLISHERROR TEXT("CRLPublishError")
  428. #define wszPROPCRLRAWCRL TEXT("CRLRawCRL")
  430. //+--------------------------------------------------------------------------
  431. // CRL Published Flags:
  433. #define CPF_BASE 0x00000001
  434. #define CPF_DELTA 0x00000002
  435. #define CPF_COMPLETE 0x00000004
  436. #define CPF_SHADOW 0x00000008
  437. #define CPF_CASTORE_ERROR 0x00000010
  438. #define CPF_BADURL_ERROR 0x00000020
  439. #define CPF_MANUAL 0x00000040
  440. #define CPF_SIGNATURE_ERROR 0x00000080
  441. #define CPF_LDAP_ERROR 0x00000100
  442. #define CPF_FILE_ERROR 0x00000200
  443. #define CPF_FTP_ERROR 0x00000400
  444. #define CPF_HTTP_ERROR 0x00000800
  446. //+--------------------------------------------------------------------------
  447. // GetProperty/SetProperty Flags:
  448. //
  449. // Choose one Type
  451. #define PROPTYPE_LONG 0x00000001 // Signed long
  452. #define PROPTYPE_DATE 0x00000002 // Date+Time
  453. #define PROPTYPE_BINARY 0x00000003 // Binary data
  454. #define PROPTYPE_STRING 0x00000004 // Unicode String
  455. #define PROPTYPE_MASK 0x000000ff
  457. // Choose one Caller:
  459. #define PROPCALLER_SERVER 0x00000100
  460. #define PROPCALLER_POLICY 0x00000200
  461. #define PROPCALLER_EXIT 0x00000300
  462. #define PROPCALLER_ADMIN 0x00000400
  463. #define PROPCALLER_REQUEST 0x00000500
  464. #define PROPCALLER_MASK 0x00000f00
  465. // end_certsrv
  467. // Choose one Table:
  469. #define PROPTABLE_REQCERT 0x00000000 // OpenRow only
  470. #define PROPTABLE_REQUEST 0x00001000
  471. #define PROPTABLE_CERTIFICATE 0x00002000
  472. #define PROPTABLE_EXTENSION 0x00003000
  473. #define PROPTABLE_ATTRIBUTE 0x00004000
  474. #define PROPTABLE_CRL 0x00005000
  475. #define PROPTABLE_MASK 0x0000f000
  477. #define PROPFLAGS_INDEXED 0x00010000 // add_certsrv
  478. #define PROPFLAGS_MASK 0x000f0000
  480. #define PROPMARSHAL_LOCALSTRING 0x00100000
  481. #define PROPMARSHAL_NULLBSTROK 0x00200000
  483. #define PROPOPEN_READONLY 0x00400000 // OpenRow only
  484. #define PROPOPEN_DELETE 0x00800000 // OpenRow only
  485. #define PROPOPEN_CERTHASH 0x01000000 // OpenRow only
  488. // begin_certsrv
  490. // RequestFlags definitions:
  492. #define CR_FLG_FORCETELETEX 0x00000001
  493. #define CR_FLG_RENEWAL 0x00000002
  494. #define CR_FLG_FORCEUTF8 0x00000004
  495. #define CR_FLG_CAXCHGCERT 0x00000008
  496. #define CR_FLG_ENROLLONBEHALFOF 0x00000010
  497. #define CR_FLG_SUBJECTUNMODIFIED 0x00000020
  498. #define CR_FLG_VALIDENCRYPTEDKEYHASH 0x00000040
  499. #define CR_FLG_CACROSSCERT 0x00000080
  500. #define CR_FLG_PUBLISHERROR 0x80000000
  501. // end_certsrv
  504. #define CB_DBMAXBINARY (4 * 1024)
  505. #define CB_DBMAXRAWCERTIFICATE (16 * 1024)
  506. #define CB_DBMAXRAWREQUEST (64 * 1024)
  507. #define CB_DBMAXRAWCRL (512 * 1024 * 1024) // 512mb
  509. #define CCH_DBMAXTEXT_MAXINTERNAL (255 / sizeof(WCHAR)) // 127 chars!
  510. #define CB_DBMAXTEXT_MAXINTERNAL (CCH_DBMAXTEXT_MAXINTERNAL * sizeof(WCHAR))
  512. #define CCH_DBMAXTEXT_SHORT 1024
  513. #define CB_DBMAXTEXT_SHORT (CCH_DBMAXTEXT_SHORT * sizeof(WCHAR))
  515. #define CCH_DBMAXTEXT_MEDIUM (4 * 1024)
  516. #define CB_DBMAXTEXT_MEDIUM (CCH_DBMAXTEXT_MEDIUM * sizeof(WCHAR))
  518. #define CCH_DBMAXTEXT_LONG (16 * 1024)
  519. #define CB_DBMAXTEXT_LONG (CCH_DBMAXTEXT_LONG * sizeof(WCHAR))
  521. #define CCH_DBMAXTEXT_OID CCH_DBMAXTEXT_MAXINTERNAL
  522. #define CB_DBMAXTEXT_OID CB_DBMAXTEXT_MAXINTERNAL
  524. #define CCH_DBMAXTEXT_REQUESTNAME CCH_DBMAXTEXT_SHORT
  525. #define CB_DBMAXTEXT_REQUESTNAME CB_DBMAXTEXT_SHORT
  527. #define CCH_DBMAXTEXT_DISPSTRING CCH_DBMAXTEXT_MEDIUM
  528. #define CB_DBMAXTEXT_DISPSTRING CB_DBMAXTEXT_MEDIUM
  531. #define CCH_DBMAXTEXT_RDN CCH_DBMAXTEXT_MEDIUM
  532. #define CB_DBMAXTEXT_RDN CB_DBMAXTEXT_MEDIUM
  534. #define CCH_DBMAXTEXT_DN CCH_DBMAXTEXT_MEDIUM
  535. #define CB_DBMAXTEXT_DN CB_DBMAXTEXT_MEDIUM
  538. #define CCH_DBMAXTEXT_ATTRNAME CCH_DBMAXTEXT_MAXINTERNAL
  539. #define CB_DBMAXTEXT_ATTRNAME CB_DBMAXTEXT_MAXINTERNAL
  541. #define CCH_DBMAXTEXT_ATTRVALUE CCH_DBMAXTEXT_MEDIUM
  542. #define CB_DBMAXTEXT_ATTRVALUE CB_DBMAXTEXT_MEDIUM
  544. #define CCH_DBMAXTEXT_ATTRSTRING CCH_DBMAXTEXT_LONG
  545. #define CB_DBMAXTEXT_ATTRSTRING CB_DBMAXTEXT_LONG
  548. #define cchHASHMAX 64
  549. #define cchSERIALNUMBERMAX 64
  551. #define cchUNSTRUCTUREDNAMEMAX CCH_DBMAXTEXT_SHORT
  552. #define cchUNSTRUCTUREDADDRESSMAX CCH_DBMAXTEXT_SHORT
  553. #define cchDEVICESERIALNUMBERMAX CCH_DBMAXTEXT_SHORT
  555. // Subject RDN string length limits from PKIX Part 1 doc:
  557. #define cchCOUNTRYNAMEMAX 2
  558. #define cchORGANIZATIONNAMEMAX 64
  559. #define cchORGANIZATIONALUNITNAMEMAX 64
  560. #define cchCOMMONNAMEMAX 64
  561. #define cchLOCALITYMANAMEMAX 128
  562. #define cchSTATEORPROVINCENAMEMAX 128
  563. #define cchTITLEMAX 64
  564. #define cchGIVENNAMEMAX 16
  565. #define cchINITIALSMAX 5
  566. #define cchSURNAMEMAX 40
  567. #define cchDOMAINCOMPONENTMAX 128
  568. #define cchEMAILMAX 128
  569. #define cchSTREETADDRESSMAX 30
  571. #ifdef cchCOMMONNAMEMAX_XELIB
  572. # if cchCOMMONNAMEMAX_XELIB != cchCOMMONNAMEMAX
  573. # error cchCOMMONNAMEMAX_XELIB != cchCOMMONNAMEMAX
  574. # endif
  575. #endif
  579. // begin_certsrv
  581. // Disposition property values:
  583. // Disposition values for requests in the queue:
  584. #define DB_DISP_ACTIVE 8 // being processed
  585. #define DB_DISP_PENDING 9 // taken under submission
  586. #define DB_DISP_QUEUE_MAX 9 // max disposition value for queue view
  588. #define DB_DISP_FOREIGN 12 // archived foreign cert
  590. #define DB_DISP_CA_CERT 15 // CA cert
  591. #define DB_DISP_CA_CERT_CHAIN 16 // CA cert chain
  592. #define DB_DISP_KRA_CERT 17 // KRA cert
  594. // Disposition values for requests in the log:
  595. #define DB_DISP_LOG_MIN 20 // min disposition value for log view
  596. #define DB_DISP_ISSUED 20 // cert issued
  597. #define DB_DISP_REVOKED 21 // issued and revoked
  599. // Disposition values for failed requests in the log:
  600. #define DB_DISP_LOG_FAILED_MIN 30 // min disposition value for log view
  601. #define DB_DISP_ERROR 30 // request failed
  602. #define DB_DISP_DENIED 31 // request denied
  604. // end_certsrv
  607. // CertIF property callback support:
  609. typedef HRESULT (WINAPI FNCIGETPROPERTY)(
  610. IN LONG Context,
  611. IN DWORD Flags,
  612. IN WCHAR const *pwszPropertyName,
  613. OUT VARIANT *pvarPropertyValue);
  615. FNCIGETPROPERTY PropCIGetProperty;
  618. typedef HRESULT (WINAPI FNCISETPROPERTY)(
  619. IN LONG Context,
  620. IN DWORD Flags,
  621. IN WCHAR const *pwszPropertyName,
  622. IN VARIANT const *pvarPropertyValue);
  624. FNCISETPROPERTY PropCISetProperty;
  627. typedef HRESULT (WINAPI FNCIGETEXTENSION)(
  628. IN LONG Context,
  629. IN DWORD Flags,
  630. IN WCHAR const *pwszExtensionName,
  631. OUT DWORD *pdwExtFlags,
  632. OUT VARIANT *pvarValue);
  634. FNCIGETEXTENSION PropCIGetExtension;
  637. typedef HRESULT (WINAPI FNCISETEXTENSION)(
  638. IN LONG Context,
  639. IN DWORD Flags,
  640. IN WCHAR const *pwszExtensionName,
  641. IN DWORD ExtFlags,
  642. IN VARIANT const *pvarValue);
  644. FNCISETEXTENSION PropCISetExtension;
  648. // CertIF property enumeration callback support:
  650. #define CIE_OBJECTID 0x00000001 // return object ids for names
  651. #define CIE_RESET 0x00000002
  653. #define CIE_TABLE_EXTENSIONS 0x00000010
  654. #define CIE_TABLE_ATTRIBUTES 0x00000020
  655. #define CIE_TABLE_MASK 0x000000f0
  657. #define CIE_CALLER_POLICY 0x00000200
  658. #define CIE_CALLER_EXIT 0x00000300
  659. #define CIE_CALLER_MASK 0x00000f00
  662. class CIENUM {
  663. public:
  664. CIENUM() { m_penum = NULL; }
  666. HRESULT EnumSetup(IN DWORD RequestId, IN LONG Context, IN DWORD Flags);
  667. HRESULT EnumNext(OUT BSTR *pstrPropertyName);
  668. HRESULT EnumClose();
  670. LONG GetContext() { return(m_Context); }
  671. DWORD GetFlags() { return(m_Flags); }
  673. private:
  674. IEnumCERTDBNAME *m_penum;
  675. LONG m_Context;
  676. DWORD m_Flags;
  677. };
  679. typedef HRESULT (WINAPI FNCIENUMSETUP)(
  680. IN LONG Context,
  681. IN LONG Flags,
  682. IN OUT CIENUM *pciEnum);
  684. FNCIENUMSETUP PropCIEnumSetup;
  687. typedef HRESULT (WINAPI FNCIENUMNEXT)(
  688. IN OUT CIENUM *pciEnum,
  689. OUT BSTR *pstrPropertyName);
  691. FNCIENUMNEXT PropCIEnumNext;
  694. typedef HRESULT (WINAPI FNCIENUMCLOSE)(
  695. IN OUT CIENUM *pciEnum);
  697. FNCIENUMCLOSE PropCIEnumClose;
  700. #endif // __CSPROP_H__